摘要
基于杂凑函数的数字签名的安全性仅依赖于其所使用的杂凑函数的抗(第二)原像攻击的强度,可以抵抗量子计算攻击,是当前后量子签名研究的热点方向之一,各标准化组织也积极对基于杂凑函数的数字签名方案进行标准化.本文利用国产杂凑函数SM3替代RFC 8554、RFC 8391和NIST SP 800-208中给出的LMS、HSS、XMSS和XMSSMT数字签名方案所使用的杂凑函数,并给出了初步的实验结果.实验结果表明,使用SM3实例化LMS和HSS是完全可行的,为后续相关标准化工作的推进提供了支撑.
The security of hash-based signatures relies solely on the(second)pre-image resistance of the underlying hash functions and they are arguably the most conservative signature designs with respect to security.Therefore,hash-based signatures are actively standardized by the standard bodies.In this article,we instantiate the LMS,HSS,XMSS and XMSSMThash-based signature schemes standardized in RFC 8554,RFC 8391 and NIST SP 800-208 with SM3 and report on the results of preliminary performance tests.Experimental results show that it is feasible to instantiate LMS and HSS with SM3,which provides support for the subsequent standardization work of relevant algorithms.
作者
孙思维
刘田雨
关志
何逸飞
荆继武
胡磊
张振峰
闫海伦
SUN Si-Wei;LIU Tian-Yu;GUAN Zhi;HE Yi-Fei;JING Ji-Wu;HU Lei;ZHANG Zhen-Feng;YAN Hai-Lun(School of Cryptology,University of Chinese Academy of Sciences,Beijing 100049,China;National Engineering Research Center For Software Engineering,Peking University,Beijing 100871,China;School of Cyber Security,University of Chinese Academy of Sciences,Beijing 100049,China;Institute of Software,Chinese Academy of Sciences,Beijing 100190,China)
出处
《密码学报》
CSCD
2023年第1期46-60,共15页
Journal of Cryptologic Research
基金
国家重点研发计划(2022YFB2701900)
国家自然科学基金(62032014,62202444)
中央高校基本科研业务费专项资金。
